GDPR in Schools

A key thing about the GDPR is its focus on Privacy by Design (accountability) - Article 35(1) of the GDPR mandates that you carry out a Data Protection Impact Assessment (DPIA) where a type of processing is likely to result in a high risk to the...

As EdTech suppliers, it is crucial for us to determine whether we fall under the category of data processor or data controller. This distinction holds great importance for schools as they need to understand the responsibilities and liabilities...

In July 2023, the EU and the US unveiled their latest endeavour, the Trans-Atlantic-EU-US-Data-Privacy-Framework, marking the third attempt to establish a smooth flow of data between these two regions. Before looking at previous attempts, let's...

Starting a new processing activity involves a number of actions, which you should complete to satisfy yourself that personal data and other information is treated with due respect and safeguards.

Is safeguarding truly more important than data protection? Some may argue that safeguarding and data protection go hand in hand, the ICO has published guidance on on data protection as part of safeguarding, both are crucial for ensuring the privacy...

It is a common occurrence - a year goes by, and the IT team has been incredibly busy, but there is a lack of recollection regarding the incidents that occurred during that time. While people may remember the more severe issues, they tend to forget...

We are excited to announce that our GDPRiS platform now seamlessly integrates with Wonde, providing our users with advanced flexibility and security in managing and maintaining user accounts.

Preventing cyber-attacks requires a multi-layered approach that encompasses both technical and educational measures. It’s a constant battle so here’s our top five things your school can do to help prevent cyber-attacks: